Main Features: A flexible web application showing common vulnerabilities such as cross site scripting, sql injections and session management issues. Helpful to IT auditors honing web security skills and to those setting up 'capture the flag' exercises in both tar and ubuntu vm formats.